Vendor CVEs
Oracle Corporation
All CVEs
10,082 total · sorted by risk| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2001-0831 | 0.00 | — | 0.01 | Dec 6, 2001 | Unknown vulnerability in Oracle Label Security in Oracle 8.1.7 and 9.0.1, when audit functionality, SET_LABEL, or SQL*Predicate is being used, allows local users to gain additional access. | |||
| CVE-2001-0942 | 0.00 | — | 0.01 | Nov 29, 2001 | dbsnmp in Oracle 8.1.6 and 8.1.7 uses the ORACLE_HOME environment variable to find and execute the dbsnmp program, which allows local users to execute arbitrary programs by pointing the ORACLE_HOME to an alternate directory that contains a malicious version of dbsnmp. | |||
| CVE-2001-1255 | 0.00 | — | 0.01 | Oct 2, 2001 | WinMySQLadmin 1.1 stores the MySQL password in plain text in the my.ini file, which allows local users to obtain unathorized access the MySQL database. | |||
| CVE-2001-1041 | 0.00 | — | 0.01 | Aug 31, 2001 | oracle program in Oracle 8.0.x, 8.1.x and 9.0.1 allows local users to overwrite arbitrary files via a symlink attack on an Oracle log trace (.trc) file that is created in an alternate home directory identified by the ORACLE_HOME environment variable. | |||
| CVE-2001-0943 | 0.00 | — | 0.02 | Aug 31, 2001 | dbsnmp in Oracle 8.0.5 and 8.1.5, under certain conditions, trusts the PATH environment variable to find and execute the (1) chown or (2) chgrp commands, which allows local users to execute arbitrary code by modifying the PATH to point to Trojan Horse programs. | |||
| CVE-2001-0591 | 0.00 | — | 0.04 | Aug 22, 2001 | Directory traversal vulnerability in Oracle JSP 1.0.x through 1.1.1 and Oracle 8.1.7 iAS Release 1.0.2 can allow a remote attacker to read or execute arbitrary .jsp files via a '..' (dot dot) attack. | |||
| CVE-2001-0528 | 0.00 | — | 0.02 | Aug 14, 2001 | Oracle E-Business Suite Release 11i Applications Desktop Integrator (ADI) version 7.x includes a debug version of FNDPUB11I.DLL, which logs the APPS schema password in cleartext in a debug file, which allows local users to obtain the password and gain privileges. | |||
| CVE-2001-0516 | 0.00 | — | 0.02 | Jul 21, 2001 | Oracle listener between Oracle 9i and Oracle 8.0 allows remote attackers to cause a denial of service via a malformed connection packet that contains an incorrect requester_version value that does not match an expected offset to the data. | |||
| CVE-2001-0517 | 0.00 | — | 0.03 | Jul 21, 2001 | Oracle listener in Oracle 8i on Solaris allows remote attackers to cause a denial of service via a malformed connection packet with a maximum transport data size that is set to 0. | |||
| CVE-2001-0515 | 0.00 | — | 0.02 | Jul 21, 2001 | Oracle Listener in Oracle 7.3 and 8i allows remote attackers to cause a denial of service via a malformed connection packet with a large offset_to_data value. | |||
| CVE-2001-0518 | 0.00 | — | 0.02 | Jul 21, 2001 | Oracle listener before Oracle 9i allows attackers to cause a denial of service by repeatedly sending the first portion of a fragmented Oracle command without sending the remainder of the command, which causes the listener to hang. | |||
| CVE-2001-0498 | 0.00 | — | 0.02 | Jul 21, 2001 | Transparent Network Substrate (TNS) over Net8 (SQLNet) in Oracle 8i 8.1.7 and earlier allows remote attackers to cause a denial of service via a malformed SQLNet connection request with a large offset in the header extension. | |||
| CVE-2001-0513 | 0.00 | — | 0.03 | Jul 21, 2001 | Oracle listener process on Windows NT redirects connection requests to another port and creates a separate thread to process the request, which allows remote attackers to cause a denial of service by repeatedly connecting to the Oracle listener but not connecting to the… | |||
| CVE-2001-1321 | 0.00 | — | 0.06 | Jul 16, 2001 | Oracle Internet Directory Server 2.1.1.x and 3.0.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via invalid encodings of BER OBJECT-IDENTIFIER values, as demonstrated by the PROTOS LDAPv3 test suite. | |||
| CVE-2001-0300 | 0.00 | — | 0.01 | Jun 2, 2001 | oidldapd 2.1.1.1 in Oracle 8.1.7 records log files in a directory (ldaplog) that has world-writable permissions, which may allow local users to delete logs and/or overwrite other files via a symlink attack. | |||
| CVE-2001-0326 | 0.00 | — | 0.05 | May 3, 2001 | Oracle Java Virtual Machine (JVM ) for Oracle 8.1.7 and Oracle Application Server 9iAS Release 1.0.2.0.1 allows remote attackers to read arbitrary files via the .jsp and .sqljsp file extensions when the server is configured to use the <> FilePermission. | |||
| CVE-2001-0190 | 0.00 | — | 0.00 | Mar 26, 2001 | Buffer overflow in /usr/bin/cu in Solaris 2.8 and earlier, and possibly other operating systems, allows local users to gain privileges by executing cu with a long program name (arg0). | |||
| CVE-1999-0784 | 0.00 | — | 0.03 | Mar 12, 2001 | Denial of service in Oracle TNSLSNR SQL*Net Listener via a malformed string to the listener port, aka NERP. | |||
| CVE-2001-0126 | 0.00 | — | 0.04 | Mar 12, 2001 | Oracle XSQL servlet 1.0.3.0 and earlier allows remote attackers to execute arbitrary Java code by redirecting the XSQL server to another source via the xml-stylesheet parameter in the xslt stylesheet. | |||
| CVE-2001-1275 | 0.00 | — | 0.01 | Jan 19, 2001 | MySQL before 3.23.31 allows users with a MySQL account to use the SHOW GRANTS command to obtain the encrypted administrator password from the mysql.user table and possibly gain privileges via password cracking. | |||
| CVE-2000-1235 | 0.00 | — | 0.05 | Dec 31, 2000 | The default configurations of (1) the port listener and (2) modplsql in Oracle Internet Application Server (IAS) 3.0.7 and earlier allow remote attackers to view privileged database information via HTTP requests for Database Access Descriptor (DAD) files. | |||
| CVE-2000-1236 | 0.00 | — | 0.02 | Dec 31, 2000 | SQL injection vulnerability in mod_sql in Oracle Internet Application Server (IAS) 3.0.7 and earlier allows remote attackers to execute arbitrary SQL commands via the query string of the URL. | |||
| CVE-2000-0818 | 0.00 | — | 0.05 | Dec 19, 2000 | The default installation for the Oracle listener program 7.3.4, 8.0.6, and 8.1.6 allows an attacker to cause logging information to be appended to arbitrary files and execute commands via the SET TRC_FILE or SET LOG_FILE commands. | |||
| CVE-2000-0986 | 0.00 | — | 0.02 | Dec 19, 2000 | Buffer overflow in Oracle 8.1.5 applications such as names, namesctl, onrsd, osslogin, tnslsnr, tnsping, trcasst, and trcroute possibly allow local users to gain privileges via a long ORACLE_HOME environmental variable. | |||
| CVE-2000-0981 | 0.00 | — | 0.02 | Dec 19, 2000 | MySQL Database Engine uses a weak authentication method which leaks information that could be used by a remote attacker to recover the password. | |||
| CVE-2000-0654 | 0.00 | — | 0.01 | Jul 11, 2000 | Microsoft Enterprise Manager allows local users to obtain database passwords via the Data Transformation Service (DTS) package Registered Servers Dialog dialog, aka a variant of the "DTS Password" vulnerability. | |||
| CVE-2000-0576 | 0.00 | — | 0.03 | Jul 5, 2000 | Oracle Web Listener for AIX versions 4.0.7.0.0 and 4.0.8.1.0 allows remote attackers to cause a denial of service via a malformed URL. | |||
| CVE-2000-0148 | 0.00 | — | 0.05 | Feb 8, 2000 | MySQL 3.22 allows remote attackers to bypass password authentication and access a database via a short check string. | |||
| CVE-1999-1256 | 0.00 | — | 0.02 | Mar 4, 1999 | Oracle Database Assistant 1.0 in Oracle 8.0.3 Enterprise Edition stores the database master password in plaintext in the spoolmain.log file when a new database is created, which allows local users to obtain the password from that file. | |||
| CVE-1999-1188 | 0.00 | — | 0.01 | Dec 27, 1998 | mysqld in MySQL 3.21 creates log files with world-readable permissions, which allows local users to obtain passwords for users who are added to the user database. | |||
| CVE-1999-1125 | 0.00 | — | 0.04 | Sep 19, 1997 | Oracle Webserver 2.1 and earlier runs setuid root, but the configuration file is owned by the oracle account, which allows any local or remote attacker who obtains access to the oracle account to gain privileges or modify arbitrary files by modifying the configuration file. | |||
| CVE-1999-1068 | 0.00 | — | 0.02 | Jul 23, 1997 | Oracle Webserver 2.1, when serving PL/SQL stored procedures, allows remote attackers to cause a denial of service via a long HTTP GET request. |
- CVE-2001-0831Dec 6, 2001risk 0.00cvss —epss 0.01
Unknown vulnerability in Oracle Label Security in Oracle 8.1.7 and 9.0.1, when audit functionality, SET_LABEL, or SQL*Predicate is being used, allows local users to gain additional access.
- CVE-2001-0942Nov 29, 2001risk 0.00cvss —epss 0.01
dbsnmp in Oracle 8.1.6 and 8.1.7 uses the ORACLE_HOME environment variable to find and execute the dbsnmp program, which allows local users to execute arbitrary programs by pointing the ORACLE_HOME to an alternate directory that contains a malicious version of dbsnmp.
- CVE-2001-1255Oct 2, 2001risk 0.00cvss —epss 0.01
WinMySQLadmin 1.1 stores the MySQL password in plain text in the my.ini file, which allows local users to obtain unathorized access the MySQL database.
- CVE-2001-1041Aug 31, 2001risk 0.00cvss —epss 0.01
oracle program in Oracle 8.0.x, 8.1.x and 9.0.1 allows local users to overwrite arbitrary files via a symlink attack on an Oracle log trace (.trc) file that is created in an alternate home directory identified by the ORACLE_HOME environment variable.
- CVE-2001-0943Aug 31, 2001risk 0.00cvss —epss 0.02
dbsnmp in Oracle 8.0.5 and 8.1.5, under certain conditions, trusts the PATH environment variable to find and execute the (1) chown or (2) chgrp commands, which allows local users to execute arbitrary code by modifying the PATH to point to Trojan Horse programs.
- CVE-2001-0591Aug 22, 2001risk 0.00cvss —epss 0.04
Directory traversal vulnerability in Oracle JSP 1.0.x through 1.1.1 and Oracle 8.1.7 iAS Release 1.0.2 can allow a remote attacker to read or execute arbitrary .jsp files via a '..' (dot dot) attack.
- CVE-2001-0528Aug 14, 2001risk 0.00cvss —epss 0.02
Oracle E-Business Suite Release 11i Applications Desktop Integrator (ADI) version 7.x includes a debug version of FNDPUB11I.DLL, which logs the APPS schema password in cleartext in a debug file, which allows local users to obtain the password and gain privileges.
- CVE-2001-0516Jul 21, 2001risk 0.00cvss —epss 0.02
Oracle listener between Oracle 9i and Oracle 8.0 allows remote attackers to cause a denial of service via a malformed connection packet that contains an incorrect requester_version value that does not match an expected offset to the data.
- CVE-2001-0517Jul 21, 2001risk 0.00cvss —epss 0.03
Oracle listener in Oracle 8i on Solaris allows remote attackers to cause a denial of service via a malformed connection packet with a maximum transport data size that is set to 0.
- CVE-2001-0515Jul 21, 2001risk 0.00cvss —epss 0.02
Oracle Listener in Oracle 7.3 and 8i allows remote attackers to cause a denial of service via a malformed connection packet with a large offset_to_data value.
- CVE-2001-0518Jul 21, 2001risk 0.00cvss —epss 0.02
Oracle listener before Oracle 9i allows attackers to cause a denial of service by repeatedly sending the first portion of a fragmented Oracle command without sending the remainder of the command, which causes the listener to hang.
- CVE-2001-0498Jul 21, 2001risk 0.00cvss —epss 0.02
Transparent Network Substrate (TNS) over Net8 (SQLNet) in Oracle 8i 8.1.7 and earlier allows remote attackers to cause a denial of service via a malformed SQLNet connection request with a large offset in the header extension.
- CVE-2001-0513Jul 21, 2001risk 0.00cvss —epss 0.03
Oracle listener process on Windows NT redirects connection requests to another port and creates a separate thread to process the request, which allows remote attackers to cause a denial of service by repeatedly connecting to the Oracle listener but not connecting to the…
- CVE-2001-1321Jul 16, 2001risk 0.00cvss —epss 0.06
Oracle Internet Directory Server 2.1.1.x and 3.0.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via invalid encodings of BER OBJECT-IDENTIFIER values, as demonstrated by the PROTOS LDAPv3 test suite.
- CVE-2001-0300Jun 2, 2001risk 0.00cvss —epss 0.01
oidldapd 2.1.1.1 in Oracle 8.1.7 records log files in a directory (ldaplog) that has world-writable permissions, which may allow local users to delete logs and/or overwrite other files via a symlink attack.
- CVE-2001-0326May 3, 2001risk 0.00cvss —epss 0.05
Oracle Java Virtual Machine (JVM ) for Oracle 8.1.7 and Oracle Application Server 9iAS Release 1.0.2.0.1 allows remote attackers to read arbitrary files via the .jsp and .sqljsp file extensions when the server is configured to use the <> FilePermission.
- CVE-2001-0190Mar 26, 2001risk 0.00cvss —epss 0.00
Buffer overflow in /usr/bin/cu in Solaris 2.8 and earlier, and possibly other operating systems, allows local users to gain privileges by executing cu with a long program name (arg0).
- CVE-1999-0784Mar 12, 2001risk 0.00cvss —epss 0.03
Denial of service in Oracle TNSLSNR SQL*Net Listener via a malformed string to the listener port, aka NERP.
- CVE-2001-0126Mar 12, 2001risk 0.00cvss —epss 0.04
Oracle XSQL servlet 1.0.3.0 and earlier allows remote attackers to execute arbitrary Java code by redirecting the XSQL server to another source via the xml-stylesheet parameter in the xslt stylesheet.
- CVE-2001-1275Jan 19, 2001risk 0.00cvss —epss 0.01
MySQL before 3.23.31 allows users with a MySQL account to use the SHOW GRANTS command to obtain the encrypted administrator password from the mysql.user table and possibly gain privileges via password cracking.
- CVE-2000-1235Dec 31, 2000risk 0.00cvss —epss 0.05
The default configurations of (1) the port listener and (2) modplsql in Oracle Internet Application Server (IAS) 3.0.7 and earlier allow remote attackers to view privileged database information via HTTP requests for Database Access Descriptor (DAD) files.
- CVE-2000-1236Dec 31, 2000risk 0.00cvss —epss 0.02
SQL injection vulnerability in mod_sql in Oracle Internet Application Server (IAS) 3.0.7 and earlier allows remote attackers to execute arbitrary SQL commands via the query string of the URL.
- CVE-2000-0818Dec 19, 2000risk 0.00cvss —epss 0.05
The default installation for the Oracle listener program 7.3.4, 8.0.6, and 8.1.6 allows an attacker to cause logging information to be appended to arbitrary files and execute commands via the SET TRC_FILE or SET LOG_FILE commands.
- CVE-2000-0986Dec 19, 2000risk 0.00cvss —epss 0.02
Buffer overflow in Oracle 8.1.5 applications such as names, namesctl, onrsd, osslogin, tnslsnr, tnsping, trcasst, and trcroute possibly allow local users to gain privileges via a long ORACLE_HOME environmental variable.
- CVE-2000-0981Dec 19, 2000risk 0.00cvss —epss 0.02
MySQL Database Engine uses a weak authentication method which leaks information that could be used by a remote attacker to recover the password.
- CVE-2000-0654Jul 11, 2000risk 0.00cvss —epss 0.01
Microsoft Enterprise Manager allows local users to obtain database passwords via the Data Transformation Service (DTS) package Registered Servers Dialog dialog, aka a variant of the "DTS Password" vulnerability.
- CVE-2000-0576Jul 5, 2000risk 0.00cvss —epss 0.03
Oracle Web Listener for AIX versions 4.0.7.0.0 and 4.0.8.1.0 allows remote attackers to cause a denial of service via a malformed URL.
- CVE-2000-0148Feb 8, 2000risk 0.00cvss —epss 0.05
MySQL 3.22 allows remote attackers to bypass password authentication and access a database via a short check string.
- CVE-1999-1256Mar 4, 1999risk 0.00cvss —epss 0.02
Oracle Database Assistant 1.0 in Oracle 8.0.3 Enterprise Edition stores the database master password in plaintext in the spoolmain.log file when a new database is created, which allows local users to obtain the password from that file.
- CVE-1999-1188Dec 27, 1998risk 0.00cvss —epss 0.01
mysqld in MySQL 3.21 creates log files with world-readable permissions, which allows local users to obtain passwords for users who are added to the user database.
- CVE-1999-1125Sep 19, 1997risk 0.00cvss —epss 0.04
Oracle Webserver 2.1 and earlier runs setuid root, but the configuration file is owned by the oracle account, which allows any local or remote attacker who obtains access to the oracle account to gain privileges or modify arbitrary files by modifying the configuration file.
- CVE-1999-1068Jul 23, 1997risk 0.00cvss —epss 0.02
Oracle Webserver 2.1, when serving PL/SQL stored procedures, allows remote attackers to cause a denial of service via a long HTTP GET request.
Page 202 of 202